[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bad Signatures

To: [email protected] (geoff)
Subject: Re: Bad Signatures
From: Adam Shostack <[email protected]>
Date: Sat, 22 Jun 1996 17:40:19 -0500 (EST)
Cc: [email protected]
In-Reply-To: <19960622151152974.AAB277@geoff> from "geoff" at Jun 22, 96 06:12:11 pm
Sender: [email protected]

geoff wrote:

| I am not convinced. For a mailing list it makes sense for all members
| to be aware of message integrity problems. Not all cypherpunks have

	Why?  I don't care that your message lacked a signature, I
neither know who you are, or have any history of interactions with
you.

| your lisp package or Pronto Secure which make signature verification of
| the 10-20 pgp signed messages per day on the list a non trivial task.

	I'll claim that anyone on the list who wants to check
signatures could do so, and that having a 'signature bot' which would
need to sign its opinions adds nothing to message security, except a
single point for comprimise.

| I also like the idea that cpunks provides as a byproduct a platform for
| developers to test and debug their security products. We really should

	I see; you're offering your web site for the complete
archives?

Adam
-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

References:
- Bad Signatures
  - From: [email protected] (geoff)

Prev by Date: Re: Bad Signatures
Next by Date: Accounting costs: the need for better metaphors
Prev by thread: Bad Signatures
Next by thread: Re: Bad Signatures
Index(es):
- Date
- Thread